An authentication bypass vulnerability exists in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not affected.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lenovo nextscale n1200 enclosure firmware |
||
lenovo thinkagile hx enclosure certified node firmware |
||
lenovo thinkagile vx enclosure firmware |
||
lenovo thinksystem d2 enclosure firmware |
||
ibm nextscale fan power controller firmware |